Analysis by: Anthony Joe Melgarejo
 ALIASES:

Backdoor:PHP/Shell.P (Microsoft), PHP/BackDoor.gen (McAfee), Backdoor.PHP.Agent.yd (Kaspersky)

 PLATFORM:

Windows

 OVERALL RISK RATING:
 DAMAGE POTENTIAL:
 DISTRIBUTION POTENTIAL:
 REPORTED INFECTION:
 INFORMATION EXPOSURE:

  • Threat Type: Backdoor

  • Destructiveness: No

  • Encrypted:

  • In the wild: Yes

  OVERVIEW

This backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It may be hosted on a website and run when a user accesses the said website.

  TECHNICAL DETAILS

Tipo de compactação: 11,817 bytes
Tipo de arquivo: Other
Data de recebimento das amostras iniciais: 02 Dec 2014

Arrival Details

This backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

It may be hosted on a website and run when a user accesses the said website.

NOTES:

This backdoor is a web panel that is capable of manipulating commands that are to be executed on affected machines.